PEAP mschapv2 using xp native supplicant
Phil Mayers
p.mayers at imperial.ac.uk
Fri Aug 1 11:20:51 CEST 2008
Ryan Setiawan H wrote:
> oh and also when using users file the PEAP just run with no problem, the
> problem rise only when using LDAP
> Thanks
>
> Ryan Setiawan H wrote:
>> Hi all,
>> I'm using eap for authentication on wired connection ( using
>> freeradius 2.0.5 and LDAP backend ), most of our clients are windows
>> machine so there's little choice for using eap, that is eap-MD5 and
>> PEAP mschapv2.
>> Using EAP-MD5 there isn't any problem, the problem begin with PEAP
>> mschapv2
>>
mschap *REQUIRES* either the NT/LM hashes or the plaintext password.
What is your LDAP server? If it's ActiveDirectory, you should:
* install samba on the machine
* join the domain
* use the "ntlm_auth" helper
If it's another LDAP, you'll need to get the passwords. If you don't
have them, it's not possible to do mschap.
More information about the Freeradius-Users
mailing list